Unique-certificate-per-device authentication - Device Connection| Alibaba Cloud Documentation Center

If the unique-certificate-per-device authentication method is used, you must install a unique device certificate on each device in advance. The device certificate includes a product key, device name, and device secret. When you connect a device to IoT Platform, IoT Platform authenticates the device certificate. After the device passes authentication, IoT Platform activates the device to enable data communication between the device and IoT Platform.

Background information

The unique-certificate-per-device authentication method is recommended because of its high level of security.

Procedure:

Procedure

Create a product.
Create a product in the IoT Platform console. For more information, see Create a product.
Add a device.

Add a device to an existing product and obtain the device certificate information. For more information, see Create a device and Create multiple devices at a time.
Burn the device certificate information onto the device.
1. Download a Link SDK.
2. Initialize the Link SDK. Specify the device certificate information in the Link SDK.
  Initialize the Link SDK in which the unique-certificate-per-device authentication method is specified. For more information, see the device authentication, and authentication and connection articles of language-specific Link SDKs in the Link SDK documentation.
3. Develop the device SDK based on your business needs. For example, you can develop the following features: over-the-air (OTA) update, sub-device connection, Thing Specification Language (TSL), and device shadows.
4. Burn the developed device SDK to the device on the production line.
Connect the device to IoT Platform.
After you power on the device and connect the device to IoT Platform, the device submits an authentication request that includes the device certificate information to IoT Platform. For more information, see Establish MQTT connections over TCP, Establish connections over CoAP, and Establish connections over HTTP.
Activate the device in the IoT Platform console.
IoT Platform authenticates the device certificate. After the device passes authentication and connects with IoT Platform, the device can publish messages to topics and subscribe to topic messages. This enables messaging between the device and IoT Platform.